Data Protection Policy

Effective date: May 25, 2018

We, at Columbus McKinnon Corporation attach great importance to the protection of your rights in processing your personal data. We process the personal data that we collect in the context of a visit to our website in accordance with the rules and regulations in effect in the country in which our company responsible for processing your personal data is located.

1. Contact information of responsible Data Privacy Officer in the European Union:

2. Collection of personal data

When you visit our website, our web servers, as a standard feature, store the IP address and the domain from which access is obtained, the date and time of the visit, which of our websites you visit, and technical information on the visit (http method, http version, http status code, length of the transmitted data, browser used).

If you log on to our website as a user, we also store the user ID needed to log on.
When visiting our web applications (e.g. CAD & go application programs), we may also store the information required to use this application effectively (language, session ID, configurator step, selected data within the configurator).

We may also collect personal data such as name, contact details and communication data, contract particularities, contacts and voluntary statements if you make this data available to us at your own initiative, for example within the framework of a registration, a survey or a sales promotion competition or in the fulfilment of contract.

Some information we collect is publicly available such as information you make available on our social network website on Facebook and LinkedIn or on our YouTube channel.

3. Purpose limitation and disclosure of personal data

Your personal data will only be used for the purpose for which you have disclosed it to us or for compatible purposes.

We use the information we collect about you in a variety of ways, including:

to conclude or perform a contract with you, for example to:

process your purchases of or requests for products and services according to our Terms of Service;

communicate with you about orders, purchases, returns, services.

for our legitimate business purposes, including to:

respond to your inquiries and requests for information;

maintain, improve, and analyze our websites, mobile applications, ads, and the products and services we offer;

detect, prevent, or investigate security breaches or fraud;

facilitate the functionality of our websites and mobile applications; and

in the context of a corporate transaction (e.g., corporate restructuring, sale or assignment of assets, merger) and to protect our rights or property, to enforce our terms of use and legal notices and for the establishment, exercise and defense of legal claims

to comply with our legal obligations, for example to maintain appropriate records for internal administrative purposes and as required by applicable law (e.g., tax law, product safety law);

on the basis of your consent, for example we may use certain kinds of cookies and to send you via email and other electronic means personalized promotions and special offers or informing you about our products, services, events, or other promotional purposes; and

for purposes unrelated to those described in this Privacy Policy by first notifying you.

To the extent that our collection of your personal information is based on consent, please note that you can withdraw your consent with effects for the future, at any time. If we are processing your personal data based on our legitimate interest, you may have a right to oppose such processing with effects for the future. . If you want to withdraw consent or express opposition, please contact us at the address mentioned above.

4. Sharing of personal data

We may share your personal data for the purposes mentioned above.

Personal data will be passed on to our affiliates within our corporate group (CMCO). Such data will only be passed on to government/state institutions and authorities within the framework of mandatory national legal provisions.

We may also share personal data with services providers in connection with the operation of this website and our company, including website hosting, the provision of our services, and promotional material distribution. Our employees have been bound by us to maintain secrecy and to protect personal data entrusted to us.

We may share personal data with other third parties in connection with a corporate restructuring, sale or assignment of assets, merger, or divestiture of our company and affiliated companies.

Where we share your personal data within our corporate group or with service providers, we will put in place contractual safeguards to ensure that your data is treated in accordance with applicable data protection laws.

When we share your data with an entity located outside of the European Union, we will put in place, in line with applicable legal requirements, appropriate safeguards to ensure that your data gets the same protection as it does here in the European Union. These measures may include entering into standard contractual clauses with the non-EU entities that receive your data. You have the right to request from us information about, including a copy of, the contractual safeguards we put in place to transfer personal data to a country that does not guarantee a level of data protection equivalent to that in the EU.

5. Rights

Under the GDPR, and subject to limitations, you may have a right to request from us access, rectification, erasure, restriction and discontinuance of processing, and portability of your personal data and not to be subject to automated individual decision-making. You may, for example, request us to confirm whether we hold any personal data about you and, where applicable, request us to provide you with a copy of your personal data. If you gave us your consent, you have the right to withdraw it any time with effects to the future. If we are processing your personal data based on our legitimate interest, you have the right to oppose our processing at any time with effects to the future.

Requests to exercise your rights should be addressed to the contact information listed above.

If, in spite of our best endeavors to ensure the correctness and accuracy of the data, incorrect information is stored, we will correct this information after receiving appropriate written instruction to do so. Please contact us if you think that your personal data is not accurate, complete or up to date.

If you consider that our processing of your personal data infringes applicable law, you may lodge a complaint with a supervisory authority.

6. Retention

We take reasonable steps to delete or permanently de-identify any personal data where:

we no longer need the personal data for any of the purposes for which the personal data was collected or for a related purpose; and

we are not required by law, a regulator or a court/tribunal order, to retain the personal data.

We may delete personal data earlier (either in whole or in part) if we determine, in our sole discretion, that the same constitutes a violation of our Terms of Service, this Privacy Policy, or for any or no reason.

7. Data safety

CMEP uses technical and organizational security measures to protect your data so as to prevent accidental or deliberate tampering, loss, destruction or access by unauthorized persons. Our security measures, such as for example data encryption, are regularly adapted and improved in line with

technological developments. While we have employed security technologies and procedures to assist safeguarding your personal data, no system or network can be guaranteed to be 100% secure.

8. Links to websites of other providers

Our website may contain links to websites of other providers. We ensure at the time of establishing the link that the directly linked pages are free of illegal content. However, Columbus McKinnon has no influence whatsoever on the content of the linked pages and is unable to monitor these pages on a regular basis. Therefore, we cannot be held liable for the content of the linked pages which have been changed since the creation of the link. This Data Privacy Policy does not apply to the linked websites of other providers.

9. Cookies

Cookies are small text files which your Internet browser files and stores on your computer. Cookies do not damage your computer and do not contain any viruses. Most web browsers automatically accept cookies, but you can change your settings to deactivate this function in your browser. We use these cookies to render our offer more user-friendly, effective and safe.

The cookies we use are so-called “session cookies” which are automatically deleted at the end of your visit. You may of course also view our website without cookies, however, this may restrict your use of certain functions. Below we briefly identify the cookies we use:

Provider

Cookie

Cookie Type

Purpose

Duration

Google

_gid

_gat

_ga

Local session

cookies

Performance

during session

during session

valid until 06-04-2020

Google Analytics

This website uses Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses cookies, to help analyze how users use the site. The information generated by the cookie about the use of the website (including your IP address) will normally be stored on a Google server in the USA. However, if you are located within the EU or the European Economic Area, your IP address will be shortened by Google beforehand. In exceptional cases only, your full address will be transmitted to a Google server in the USA and shortened there. On our behalf, Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

You may object to this recording of data by Google Analytics by following the below link: Deactivation add-on for Google Analytics browser:

“Do Not Track” Technology – Some newer web browsers have a “Do Not Track” preference that transmits a “Do Not Track” header to the websites you visit with information indicating that you do not want your activity to be tracked. We currently do not respond to browser “Do Not Track” signals.

Opt out – You may be able to reject cookies, web beacons, entity tags and HTML5 local storage by adjusting the appropriate settings in your browser. Each browser is different, but many common browsers (Internet Explorer, Chrome, Firefox, and Safari) have preferences or options that may be adjusted to allow you to either accept or reject cookies and certain other technologies before they are set or installed or allow you to remove or reject the use or installation of certain technologies altogether. If you want to learn the correct way to modify your browser settings, please use the Help menu in your browser

10. Updates to this website privacy policy

In order to keep up with the continuing development of the Internet, we shall be entitled at any time to amend this data protection policy while adhering to the provisions of data privacy and data protection legislation.